> I can get only a
> success saml ticket without attributes
That would happen if you have not defined an attributeRepository bean
in the deployerConfigContext.xml on the server. That is where you
define the strategy for obtaining attributes from the principal
identifier. Below is a a modified version of what we use to pull
attributes from LDAP:
<bean id="attributeRepository"
class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao">
<property name="contextSource" ref="edIdContextSource" />
<property name="baseDN" value="ou=People,dc=vt,dc=edu" />
<property name="query" value="(uupid={0})" />
<!--
Attribute mapping beetween LDAP (key) and principal (value).
Value may be either String or Set of String for multivalued mappings.
-->
<property name="ldapAttributesToPortalAttributes">
<map>
<entry key="accountState" value="accountState" />
<entry key="authId" value="authId" />
<entry key="eduPersonAffiliation" value="eduPersonAffiliation" />
<entry key="groupMembership" value="groupMembership" />
</map>
</property>
</bean>
See the CAS User Manual for further information,
http://www.ja-sig.org/wiki/display/CASUM/Attributes.
Hope that helps,
Marvin
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
